Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 5520 using MGMT for FAILOVER - IPS INSTALLATION

Hi Guys,

 

I have two ASA 5520 using management 0/0 for failover

 

FW1-SP-TB-CPD# sh failover interface
        interface FAILOVER Management0/0
                System IP Address: 192.168.1.1 255.255.255.0
                My IP Address    : 192.168.1.1
                Other IP Address : 192.168.1.2

 

I'm facing issues to install the module of IPS on them. Due i can't access IPS CONFIGURTION throught ASDM.

I've created a transit vlan to connect the two firewalls (MGMT interfaces) and both IPS (installed on each FW).

From IPS i can ping both FWs. But from the FW i can't ping any IPS.

Can anyone help me?

auzfw13-ips2# sh configuration
! ------------------------------
! Current configuration last modified Sat Jun 21 16:08:09 2014
! ------------------------------
! Version 7.0(2)
! Host:
!     Realm Keys          key1.0
! Signature Definition:
!     Signature Update    S480.0   2010-03-24
! ------------------------------
service interface
exit
! ------------------------------
service authentication
exit
! ------------------------------
service event-action-rules rules0
exit
! ------------------------------
service host
network-settings
host-ip 192.168.1.4/24,192.168.1.1
host-name auzfw13-ips2
dns-primary-server enabled
address 10.123.20.10
exit
exit
ntp-option enabled-ntp-unauthenticated
ntp-server 10.241.231.2
exit
exit
! ------------------------------
service logger
exit
! ------------------------------
service network-access
exit
! ------------------------------
service notification
exit
! ------------------------------
service signature-definition sig0
exit
! ------------------------------
service ssh-known-hosts
exit
! ------------------------------
service trusted-certificates
exit
! ------------------------------
service web-server
port 443
exit
! ------------------------------
service anomaly-detection ad0
exit
! ------------------------------
service external-product-interface
exit
! ------------------------------
service health-monitor
exit
! ------------------------------
service global-correlation
exit
! ------------------------------
service analysis-engine
exit

 

 

auzfw13-ips# sh configuration
! ------------------------------
! Current configuration last modified Sat Jun 21 15:52:15 2014
! ------------------------------
! Version 7.0(2)
! Host:
!     Realm Keys          key1.0
! Signature Definition:
!     Signature Update    S480.0   2010-03-24
! ------------------------------
service interface
exit
! ------------------------------
service authentication
exit
! ------------------------------
service event-action-rules rules0
exit
! ------------------------------
service host
network-settings
host-ip 192.168.1.3/24,192.168.1.1
host-name auzfw13-ips
dns-primary-server enabled
address 10.123.20.10
exit
exit
ntp-option enabled-ntp-unauthenticated
ntp-server 10.241.231.2
exit
exit
! ------------------------------
service logger
exit
! ------------------------------
service network-access
exit
! ------------------------------
service notification
exit
! ------------------------------
service signature-definition sig0
exit
! ------------------------------
service ssh-known-hosts
exit
! ------------------------------
service trusted-certificates
exit
! ------------------------------
service web-server
exit
! ------------------------------
service anomaly-detection ad0
exit
! ------------------------------
service external-product-interface
exit
! ------------------------------
service health-monitor
exit
! ------------------------------
service global-correlation
exit
! ------------------------------
service analysis-engine
exit

 

 

 

 

Everyone's tags (2)
111
Views
0
Helpful
0
Replies